Lucene search
HistoryOct 29, 2014 - 10:55 a.m.
CVE-2014-6149
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.003
Percentile
66.2%
Directory traversal vulnerability in BIRT-viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0.0 through 7.2.0.10, 7.2.1.0 through 7.2.1.6, and 7.2.2.0 through 7.2.2.2 allows remote authenticated users to read arbitrary files via unspecified vectors.
Affected configurations
Node
ibmtivoli_application_dependency_discovery_managerMatch7.2.0
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.1
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.2
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.3
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.4
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.5
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.6
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.7
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.8
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.9
ORibmtivoli_application_dependency_discovery_managerMatch7.2.0.10
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1.1
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1.2
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1.3
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1.4
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1.5
ORibmtivoli_application_dependency_discovery_managerMatch7.2.1.6
ORibmtivoli_application_dependency_discovery_managerMatch7.2.2
ORibmtivoli_application_dependency_discovery_managerMatch7.2.2.1
ORibmtivoli_application_dependency_discovery_managerMatch7.2.2.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.1 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.1:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.2 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.2:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.3 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.3:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.4 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.4:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.5 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.5:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.6 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.6:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.7 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.7:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.8 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.8:*:*:*:*:*:*:* |
| ibm | tivoli_application_dependency_discovery_manager | 7.2.0.9 | cpe:2.3:a:ibm:tivoli_application_dependency_discovery_manager:7.2.0.9:*:*:*:*:*:*:* |
Related
ibm
ibm
cvelist
cvelist
CVE-2014-6149
2014-10-29 10:00:00
cve
cve
CVE-2014-6149
2014-10-29 10:55:05
prion
prion
Directory traversal
2014-10-29 10:55:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0.003
Percentile
66.2%
Related for NVD:CVE-2014-6149